At American Express, our culture is built on a 175-year history of innovation, shared values and leadership behaviours, and an unwavering commitment to our customers, communities and colleagues. We deliver differentiated products, provide world‑class customer service, and operate with a strong risk mindset to uphold our brand promise of trust, security and service.
Responsibilities
Manager, Technology Risk & Control oversees the identification, assessment and mitigation of technology risks within the technology resilience space, conducting thorough risk evaluations, developing risk management strategies and ensuring compliance with industry standards and regulatory requirements.
* Oversees the management and integration of several resilience‑related projects simultaneously, adjusting scope, timing and budgets to efficiently utilize resources and adhere to program timelines and budgets.
* Manages the identification and evaluation of controls and adherence to controls, ensuring effective implementation and reporting.
* Oversees the development and implementation of strategic mitigation strategies to address identified resilience risks, ensuring robust protection of the organization’s technology infrastructure.
* Collaborates with other teams within Technology to identify initiatives to improve the organization’s technology resilience stance; partners with external teams and third parties to identify opportunities to improve the technology resilience posture.
* Prepares and presents detailed resilience‑related risk management reports and documentation to senior leadership and stakeholders, providing clear and accurate records of risk assessments, mitigation actions and compliance status.
* Provides key inputs in training and development programs to enhance skills and knowledge in Technology Resilience, ensuring continuous professional growth and the ability to effectively manage current and future risks.
* Collaborates and co‑creates effectively with teams in product and the business to align technology initiatives with business objectives.
Minimum Qualifications
Education and Knowledge
* Bachelor’s Degree in Computer Science, Information Systems, Cybersecurity, or comparable experience.
* Advanced knowledge of global technology standards and applicable regulations.
* Advanced knowledge of technology control domains such as Technology Resilience, Security Governance & Operations, IT General Controls and Cloud Security.
* Proficiency in enterprise risk management with an emphasis on operational risk management and technology risk.
Work Experience
* Experience in technology risk & control and disaster recovery / business continuity management.
* Experience in risk assessment methodologies and advanced mitigation strategies.
* Experience in processing regulatory requirements and compliance standards in the technology sector.
* Experience with Compliance Management and Risk Assessment tools such as ServiceNow GRC, RSA Archer, MetricStream, Fusion.
* Experience creating impactful PowerPoint presentations.
Employment Eligibility
Employment eligibility to work with American Express in the UK is required as the company will not pursue visa sponsorship for these positions.
Benefits and Support
* Competitive base salaries.
* Bonus incentives.
* Support for financial‑well‑being and retirement.
* Comprehensive medical, dental, vision, life insurance and disability benefits (depending on location).
* Flexible working model with hybrid, onsite or virtual arrangements depending on role and business need.
* Generous paid parental leave policies (depending on your location).
* Free access to global on‑site wellness centers staffed with nurses and doctors (depending on location).
* Free and confidential counselling support through our Healthy Minds program.
* Career development and training opportunities.
Offer of employment with American Express is conditioned upon the successful completion of a background verification check, subject to applicable laws and regulations.
#J-18808-Ljbffr